Patent · US Active

Systems and methods for performing dynamic firewall rule evaluation

US11477167B2 · kind B2 · utility

0Cited by

3References

20Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Andrey KARPOVSKY · Kiryat Motzkin, IL
Tomer Rotstein · Haifa, IL
Tomer Levav · Haifa, IL
Ron Matchoro · Redmond, US
Michael MAKHLEVICH · Haifa, IL

Key dates

Filing date	Dec 16, 2020
Grant date	Oct 18, 2022
Priority date	—
Expiry date	Apr 22, 2041

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/668
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A firewall rule evaluation service scores firewall rules based on characteristics of logical objects that fall within ranges of Internet Protocol (IP) addresses corresponding to the firewall rules. Firewall rule scoring criteria may cause scores to be assigned to individual firewall rules based on an inverse relationship to quantities of discrete Autonomous Systems as well as aggregate numbers of and/or severity scores for threat intelligence flagged IP addresses granted access by individual firewall rules. The firewall rule evaluation service may further determine firewall rule recommendations for replacing firewall rules spanning multiple IP prefixes for different Autonomous Systems with more narrowly defined firewall rules that precisely encompass IP prefixes corresponding to single autonomous systems or multiple related Autonomous Systems (e.g., Autonomous Systems operated by a single trustworthy entity).

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.